Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Social Engineering: How a 15-yo Brit Used it Against the US Gov’t and Why It Matters To Your Business

In June 2015, a British boy named Kane Gamble—who was 15 years old then—targeted CIA heads and FBI directors and gained access to classified documents.  This is an interesting story about how a teenager used social engineering techniques to gain access to highly classified accounts and documents.

IC3 Issues Alert on Tech Support Fraud

03/29/2018 01:00 PM EDT  Original release date: March 29, 2018

The Internet Crime Complaint Center (IC3) has released an alert on tech support fraud. Tech support fraud involves criminals claiming to provide technical support to fix problems that don’t exist. Their methods include placing calls, sending pop-ups, engaging misleading lock screens, and sending emails to entice users to accept fraudulent tech support services. Users should not give control of their computers or mobile devices to any stranger offering to fix problems.

NCCIC/US-CERT encourages users and administrators to refer to the IC3 Alert and the NCCIC Tip on Avoiding Social Engineering and Phishing Attacks for more information. If you believe you are a victim of a tech support scam, file a complaint with the IC3 at www.ic3.gov.

Facebook revamps security, privacy settings following huge data scandal

Facebook says it’s going to reach into the 20 or so dusty corners where it’s tucked away privacy and security settings and pull them into a centralized spot for users.

How to check if your Facebook data was used by Cambridge Analytica

Try this link:  https://www.facebook.com/help/1873665312923476

Panera Bread customer records exposed via leaky database – dough!

There’s a war of words going on at the moment between veteran cybercrime reporter Brian Krebs and US bakery chain Panera Bread.

5 million credit cards exposed in Saks and Lord & Taylor data breach

A Dark Web monitoring company announced the breach via Twitter on April Fool’s Day, but it wasn’t a joke.

Update now! Microsoft’s April 2018 Patch Tuesday – 65 vulns, 24 critical

Here’s what you need to know about the April 2018 Patch Tuesday updates…

3 critical Flash vulnerabilities patched. Update now!

Cybercriminals love that you run Flash. Don’t.



About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Serving small business owners in the St Paul, Minneapolis, and western Wisconsin area since 2001. Cybersecurity and hacking have been a passion of mine since I entered the computer and networking business in 2000. I hold several cybersecurity certifications including Certified Information Systems Security Professional (CISSP), Certified Advanced Security Pratitioner (CASP), and Certified Ethical Hacker (CEH). Other computer industry certifications include A+, Network+ and Microsoft Certified System Engineer (MCSE). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of security on their computers, networks, and websites. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. We also provide Cybersecurity Awareness Training for clients and their employees. I am a frequent speakers at cybersecurity conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference, the (ISC)2 World Congress, and the ISSA International Conference, and many local community organizations, Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2008.
  Related Posts

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.